[NIFI-10270] Upgrade AWS SDK to 1.2.267 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.17.0
Component/s: Extensions, MiNiFi
Labels:
- dependency-upgrade

Description

Several NiFi extension components depend on version 1 of the AWS SDK for various service operations. CVE-2022-31159 impacts the S3 TransferManager in AWS SDK versions prior to 1.2.260.

Although NiFi components do not include direct usage of the S3 TransferManager, library references should be upgraded.

Attachments

Issue Links

links to

GitHub Pull Request #6240

Activity

People

Assignee:: David Handermann

Reporter:: David Handermann

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 23/Jul/22 17:13

Updated:: 24/Jul/22 01:09

Resolved:: 24/Jul/22 01:09

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

20m